What organization is responsible for developing mandatory standards to be followed by federal agencies in the US?

The National Institute for Standards and Technology (NIST) is the organization responsible for developing mandatory standards that federal agencies in the United States must adhere to. NIST's primary role is to promote innovation and industrial competitiveness by advancing measurement science, standards, and technology. Within the context of cybersecurity, NIST establishes frameworks, guidelines, and standards that federal agencies use to manage and reduce cybersecurity risks. This includes the well-known NIST Cybersecurity Framework and various special publications that guide the implementation of security controls and risk management practices.

The development of these standards ensures consistent and effective practices across federal agencies, enhancing the overall security posture of the U.S. government. NIST's authoritative position enables it to effectively address contemporary challenges faced in the field of cybersecurity, making it a pivotal entity in setting guidelines that protect federal information systems.